Microsoft Outlook Security Update Advisory (CVE-2024-21378)

Overview

 

An update has been made available to address a vulnerability in Microsoft Outlook. users of affected versions are advised to update to the latest version.

The vulnerability is a publicly disclosed PoC and should be treated with extreme caution.

 

Affected Products

 

Microsoft Outlook 2016

Microsoft Office_long_term_servicing_channel 2021

Microsoft Office 2019

Microsoft 365_apps enterprise

 

Resolved Vulnerabilities

 

Remote Code Execution Vulnerability in Microsoft Outlook (CVE-2024-21378)

 

Vulnerability Patches

 

Product-specific Vulnerability Patches were made available in the March 13, 2024 Update. For more information about Vulnerability Patches, see the “Security Updates” section of the Referenced Sites [2].

 

Referenced Sites

 

[1] CVE-2024-21378 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-21378
[2] Microsoft Outlook Remote Code Execution Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21378
[3] Description of Security Update for Outlook 2016: March 13, 2024 (KB5002543)
https://support.microsoft.com/ko-kr/topic/outlook-2016%EC%9A%A9-%EB%B3%B4%EC%95%88-%EC%97%85%EB%8D%B0%EC%9D%B4%ED%8A%B8%EC%97%90-%EB%8C%80%ED%95%9C-%EC%84%A4%EB%AA%85-2024%EB%85%84-3%EC%9B%94-13%EC%9D%BC-kb5002543-be028048-a92d-4aaf-8978-8ae6dc443436